Date: Wed, 5 Apr 1995 00:22:40 +1000 From: Bruce Evans <bde@zeta.org.au> To: jkh@freefall.cdrom.com, rgrimes@gndrsh.aac.dev.com Cc: current@FreeBSD.org, smace@metal-mail.neosoft.com Subject: Re: a few patches... Message-ID: <199504041422.AAA23867@godzilla.zeta.org.au>
next in thread | raw e-mail | index | archive | help
>> > I would like to add a config option to enable as disable securelevel. >> > the securelevel and chflags features are a major security helper IMHO. >> >> Are you saying you also want to come up secure? No installing over >> kernels and things except when up single? >> >> Hmmmmm... Hmmmmmmmmmmmmm! David? When did we say we were going to >> cut over after the "grace period" on this one? :-) >> >> Personally, I think it's not a bad idea for 2.1. I think it highly Optionally. >Did you find an archive format to use for the bindist's that preserve >this information?? Tar doesn't, I think I remeber seeing Brunce say >that cpio -H newc did, but I can't verify it right now since my 2.x box >is down. None of tar, cpio or pax call chflags(), so they can't restore flags. Bruce
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199504041422.AAA23867>